Authentication key agreement is vital for secure communication on the public network, it can make communication in a malicious attacker current safely set shared session key. Certificate-Based Cryptography (CBC) to solve the certificate revocation problem in traditional public key cryptosystems, the problem of key escrow in identity-based cryptosystem and no certificate cryptosystem in the security channel problems is established. The existing certificate-based authentication key agreement scheme is mostly adopted the expensive bilinear pairing, not suitable for calculation with limited resources of mobile devices. In this study, we design a lightweight AKA protocol based on the certificate, the protocol uses pseudonym technology to realize user anonymity, and provides forward confidentiality, man-in-the-middle attack resistance, replay attack and other security analysis. Compared with the previous certificate -based AKA protocol, this protocol has obvious advantages in computing efficiency.